2 matches found
MiracleLinux 7 : freetype-2.8-14.1.0.1.el7.AXS7 (AXSA:2025-9845:05)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9845:05 advisory. CVE-2025-27363: fix OOB write when parsing font subglyph structures CVEs: CVE-2025-27363 An out of bounds write exists in FreeType versions 2.13.0 and below...
USN-7352-1 freetype vulnerability
It was discovered that FreeType incorrectly handled certain memory operations when parsing font subglyph structures. A remote attacker could use this issue to cause FreeType to crash, resulting in a denial of service, or possibly execute arbitrary code...